Revision as of 17:39, 31 August 2009

Main

Overview

New open source and commercial web application security tools are released almost every day. These tools are used either to detect vulnerabilities within web applications or to protect web applications from exploitation of potential vulnerabilties that may be present in these applications. With so many tools at hand, it may sometimes be difficult to make a decision about the selection of a tool that best meets your requirements.

The OWASP Tools Project has been created to provide unbiased, practical information and guidance about application security tools that are used to detect vulnerabilities or to protect against vulnerabilities. The goal of this project is to identify any available tools, categorise them and rate them according to a predefind criteria to assess their effectiveness.

Project Roadmap

Defining categories for tools

Identification of tools within these categories

Define rating criteria and the test procedure for identified tools

Testing the tools against test applications to see how effectively the tool meets the rating criteria

Provide rating to the tools based on their effectiveness

Project Progress

As of August 2009, in its initial stage, we are in the process of gathering information on tools; and defining the rating ceiteria and the test procedure for identified tools.

Feedback and Participation

We hope you find the OWASP Tools Project useful. Please contribute back to the project by sending your comments, questions, and suggestions to the mailing list here.

Project Identification

PROJECT INFOWhat does this OWASP project offer you?

what

is this project?

OWASP Tools Project

Purpose: The OWASP Tools Project has been created to provide unbiased, practical information and guidance about application security tools that are used to detect vulnerabilities or to protect against vulnerabilities. The goal of this project is to identify any available tools, categorise them and rate them according to a predefind criteria to assess their effectiveness.